Businesses are increasingly defrauded through common scams known as business email compromise scams (BEC scams) for which they do not have insurance to cover the resulting losses. Fortunately, there are easy-to-implement...more
Asking the right questions within your organization is key to effectively managing cyber risk. Here are 10 questions that you should ask your team...more
4/4/2025
/ Canada ,
Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Security ,
Incident Response Plans ,
Policies and Procedures ,
Regulatory Requirements ,
Risk Assessment ,
Risk Management ,
Third-Party Risk
Regulatory scrutiny is increasing concerning information of minors. Canadian privacy commissioners have identified minor's rights as a clear priority, and US regulators are setting strict parameters around what organizations...more
Our goal is to cut through the hype and noise, while zeroing in on how AI and its evolving regulation will impact your business, your competitors and the markets in which you operate....more
4/12/2024
/ Artificial Intelligence ,
Board Members ,
Business Operations ,
Business Opportunities ,
Business Strategies ,
Canada ,
Change Management ,
Code of Conduct ,
Continuing Legal Education ,
Corporate Governance ,
Duty of Care ,
Privacy Laws ,
Risk Management ,
Strategic Planning ,
Webinars
In today's rapidly evolving technological landscape, the emergence of generative artificial intelligence (GenAI) presents both opportunities and challenges for investors, founders and companies alike. With GenAI generating...more
On September 26, 2023, the House of Common's Standing Committee on Industry and Technology (the Standing Committee) embarked on a comprehensive examination of Bill C-27, the Digital Charter Implementation Act. If passed, this...more
The federal government has recently released its voluntary Code of Practice (the Code) relating to advanced generative artificial intelligence (AI) systems. The code identifies measures that organizations are encouraged to...more
On July 13, 2023, the Supreme Court of Canada (SCC) denied leave to appeal from three Ontario Court of Appeal (ONCA) decisions declining to apply the tort of intrusion upon seclusion to database defendants—i.e., organizations...more
The Federal Court of Canada released a decision on April 14, 2023 in OPC v Facebook Inc.,2023 FCC 533 [Facebook], dismissing the Privacy Commissioner's application against Facebook (now Meta Platforms, Inc.) stemming from...more
ChatGPT—the artificial intelligence-powered chatbot—has been making headlines since its initial release date on November 30, 2022. Most recently, ChatGPT has been the subject of attention in connection with privacy...more
The Ontario Court of Appeal recently released a trilogy of decisions (Winder v. Marriott International, Inc., 2022 ONCA 815; Obodo v. Trans Union of Canada, Inc., 2022 ONCA 814; Owsianik v. Equifax Canada Co., 2022 ONCA 813)...more
The disposal of hardware in the wrong manner can leave an organization offside its regulatory obligations under privacy legislation. Depending on the residence of the individuals or entities whose personal data is stored by...more
10/14/2022
/ Canada ,
Computer Hard Drives ,
Computer Servers ,
Corporate Counsel ,
Data Breach ,
Data Protection ,
Data Security ,
Hardware ,
Morgan Stanley ,
Personal Data ,
Securities and Exchange Commission (SEC) ,
Waste Disposal ,
Web Servers
Fintechs and other entities that contract with federally regulated financial institutions (FRFIs) should be aware of the possibility of more stringent requirements regarding risk management in their commercial...more
On June 14, 2022, federal Public Safety Minister Marco Mendicino introduced Bill C-26, An Act Respecting Cyber Security (ARCS). Intended to strengthen cybersecurity of vital services and vital systems, this proposed...more
Understanding the Draft of the Consumer Privacy Protection Act and Artificial Intelligence and Data Act -
On June 16, 2022, the Digital Charter Implementation Act, 2022 (DCIA) was introduced as Bill C-27. The DCIA will...more
6/20/2022
/ Artificial Intelligence ,
Canada ,
Consumer Privacy Rights ,
Corporate Counsel ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
New Legislation ,
Personal Information
Ransomware continues to present an increasing risk to all organizations. Ransomware attacks can involve the installation of malicious software designed to block access to computer systems and/or steal data, and a...more
3/15/2022
/ Canada ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Financial Crimes ,
Financial Institutions ,
Financial Reporting ,
Popular ,
Ransomware
On November 9, 2021, the Office of the Superintendent of Financial Institutions (OFSI) launched a three-month public consultation on the Draft Guideline B-13: Technology and Cyber Risk Management....more
OSFI, the Canadian Federal Office of the Superintendent of Financial Institutions, on August 13, 2021, issued new guidance on Technology and Cyber Security Incident Reporting, replacing prior guidance of March 2019....more
8/31/2021
/ Canada ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Financial Institutions ,
Financial Services Industry ,
Hackers ,
Personally Identifiable Information ,
Popular ,
Risk Management
In Reference re Subsection 18.3(1) of the Federal Courts Act (the Reference), the Federal Court of Canada held that the Personal Information Protection and Electronic Documents Act, SC 2000, c 5 (PIPEDA) applies to internet...more
Organizations operating in Ontario may soon be subject to an entirely new provincial privacy regime that could impose substantial compliance obligations, and establish significant penalties for contravention of those...more
6/28/2021
/ Canada ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Electronically Stored Information ,
Information Governance ,
Information Management ,
Personal Information ,
Privacy Laws ,
Privacy Policy
Insurer AXA, among Europe's top five insurers, recently announced that it was suspending insurance coverage in France for ransomware extortion payments. AXA said it made this decision in response to concerns raised by French...more
Federal Privacy Commissioner Calls for Stronger Privacy Protections in Bill C-11 -
In November 2020, the federal government tabled Bill C-11, the proposed new private-sector privacy law that would replace the current...more
On April 30, 2021, the Government of Ontario introduced Building a Digital Ontario, the province's new digital and data strategy, which lays the foundation for Ontario to become "the world's leading digital jurisdiction."...more
The use of a facial recognition tool by Clearview AI, Inc. was the subject of an investigation by the privacy commissioners of Alberta, British Columbia and Quebec and their federal counterpart. In their jointly published...more
The long-awaited comprehensive reform to Canada's private sector privacy legislation is now finally underway. On November 17, 2020, the Digital Charter Implementation Act, 2020 (DCIA) was introduced. The DCIA will enact the...more